14 matches found
Exploit for Out-of-bounds Write in Ffmpeg
Synthetic Test Case: CVE-2020-12284 CWE: CWE-787 Orig...
FFmpeg Heap-based Buffer Overflow (CVE-2020-12284)
A buffer overflow vulnerability exists in NGINX NJS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...
USN-4431-1: FFmpeg vulnerabilities | Cloud Foundry
Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description It was discovered that FFmpeg incorrectly verified empty audio packets or HEVC data. An attacker could possibly use this issue to cause a denial of service via a crafted file. This issue only affected...
GLSA-202007-58 : FFmpeg: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202007-58 FFmpeg: Multiple vulnerabilities Multiple vulnerabilities have been discovered in FFmpeg. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for details...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : FFmpeg vulnerabilities (USN-4431-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4431-1 advisory. It was discovered that FFmpeg incorrectly verified empty audio packets or HEVC data. An attacker could possibly use this issue to...
USN-4431-1: FFmpeg vulnerabilities
It was discovered that FFmpeg incorrectly verified empty audio packets or HEVC data. An attacker could possibly use this issue to cause a denial of service via a crafted file. This issue only affected Ubuntu 16.04 LTS, as it was already fixed in Ubuntu 18.04 LTS. For more information see:...
Debian DSA-4722-1 : ffmpeg - security update
Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed files/streams are processed. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...
[SECURITY] [DSA 4722-1] ffmpeg security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4722-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 08, 2020 https://www.debian.org/security/faq -...
Security fix for the ALT Linux 9 package ffmpeg version 2:4.2.3-alt1
2:4.2.3-alt1 built May 28, 2020 Anton Farygin in task 252247 --- May 25, 2020 Anton Farygin - 4.2.3 Fixes: CVE-2019-13312,CVE-2020-12284...
CVE-2020-12284
cbsjpegsplitfragment in libavcodec/cbsjpeg.c in FFmpeg 4.1 and 4.2.2 has a heap-based buffer overflow during JPEGMARKERSOS handling because of a missing length check...
FFmpeg <= 4.2.3 Buffer Overflow Vulnerability
FFmpeg is prone to a buffer overflow vulnerability. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2020-12284
cbsjpegsplitfragment in libavcodec/cbsjpeg.c in FFmpeg 4.1 and 4.2.2 has a heap-based buffer overflow during JPEGMARKERSOS handling because of a missing length check...
CVE-2020-12284
cbsjpegsplitfragment in libavcodec/cbsjpeg.c in FFmpeg 4.1 and 4.2.2 has a heap-based buffer overflow during JPEGMARKERSOS handling because of a missing length check...
CVE-2020-12284
FFmpeg contains a heap-based buffer overflow in libavcodec/cbs_jpeg.c (cbs_jpeg_split_fragment) in versions 4.1 and 4.2.2, triggered during JPEG_MARKER_SOS processing due to a missing length check. This could lead to memory corruption. Several advisories reference CVE-2020-12284; fixes were issue...